Join our newsletter!
Get tailored insights for every stage of your journey and receive early access to special campaigns straight to your inbox!
Join our newsletter!
Get tailored insights for every stage of your journey and receive early access to special campaigns straight to your inbox!
As Vivosens Inc. (“Vivoo”,” Data Controller") we value the protection of your personal data, so we expect you to show the same attention and Vivoo respect your privacy and are committed to protecting your privacy by complying with the California Privacy Rights Act (CPRA) and 2016/679 numbered General Data Protection Regulation (“GDPR”). This addendum supplements the information contained in Vivoo’s privacy policy and applies to visitors, users and others residing in the State of California and other states with similarly structured data protection laws. For this reason, it is very important for us that you read this text detailing which personal data we use for what purpose and to clearly understand the obligations of Vivoo, who is responsible for the administrative and technical security of your personal data as “Controller”.
With this privacy notice we aim to inform data subjects, persons whose personal data is processed (used), as the “Data Controller” who uses their data. As a Controller, we have to prove that you have been informed about your personal data we will process by explaining:
Please be kindly informed that through Privacy Notice, we provide links to certain areas on our website where your personal data may be collected, and additional privacy notices are provided in those areas.
Please note: This Privacy notice does not apply to, and Vivoo is not responsible for, any third-party websites which may be accessible through links from this website. If you follow a link to any of these third-party websites, their own privacy policies may apply.
As Vivoo, we collect your personal data listed below through digital means through your visit to our website. The following information:
are obtained through your visit to our website only if you provide your consent to marketing and statistics cookies through our Cookie Banner. You may always revoke your consent from our Cookie Policy webpage.
You can prevent the storage of cookies by configuring your browser software accordingly; however, please note that in this case you may not be able to use all the features of this website to their full extent, you may find a full list of cookies listed below:
Cookies Necessary for the Functioning of the Store
|
Name |
Description |
Duration |
|
_shopify_essential |
Contains essential information for the correct functionality of a store such as session and checkout information and anti-tampering data. |
1y |
|
_shopify_test |
Used to check cookie capabilities on the client. |
1min |
|
_tracking_consent |
Used to store a user's preferences if a merchant has set up privacy rules in the visitor's region. |
1y |
|
cart |
Contains information related to the user's cart. |
2w |
|
cart_currency |
Used after a checkout is completed to initialize a new empty cart with the same currency as the one just used. |
2w |
|
discount_code |
Stores a discount code (received from an online store visit with a URL parameter) in order to the next checkout. |
session |
|
localization |
Used to localize the cart to the correct country. |
2w |
|
login_with_shop_finalize |
Used to facilitate login with Shop. |
5min |
|
shopify_pay |
Used to log in a buyer into Shop Pay when they come back to checkout on the same store. |
1y |
|
storefront_digest |
Stores a digest of the storefront password, allowing merchants to preview their storefront while it's password protected. |
1y |
Reporting and Analytics
|
Name |
Description |
Duration |
|
_landing_page |
Capture the landing page of visitor when they come from other sites. |
2w |
|
_orig_referrer |
Allows merchant to identify where people are visiting them from. |
2w |
|
_shopify_analytics |
Contains analytics data for buyer surfaces such as the storefront or checkout. |
1y |
|
_shopify_s |
Used to identify a given browser session/shop combination. Duration is 30 minute rolling expiry of last use. |
30min |
|
_shopify_y |
Shopify analytics. |
1y |
|
shop_analytics |
Contains the required buyer information for analytics in Shop. |
1y |
Marketing
|
Name |
Description |
Duration |
|
_shopify_marketing |
Contains marketing data for buyer surfaces such as the storefront or checkout. |
1y |
User preferences
|
Name |
Description |
Duration |
|
shopify_override_user_locale |
Used as a mechanism to set User locale in admin. |
1y |
When visitors load shop.app, we place the following Shopify cookies.
Cookies Necessary for the Functioning of the Site
|
Name |
Description |
Duration |
|
_shop_app_essential |
Contains essential information for the correct functionality of Shop.app. |
1y |
|
privacy_signal |
Remembers a user's privacy choices about cookies and online tracking, especially for marketing and advertising, based on user's regional privacy laws. |
1y |
Reporting and Analytics
|
Name |
Description |
Duration |
|
_shop_app_analytics |
Contains analytics data for Shop.app. |
1y |
We use the following cookies across the merchant experience, including shopify.com, account.shopify.com and admin.shopify.com.
Cookies Necessary for the Functioning of the Site
|
Name |
Description |
Duration |
|
__Host-_identity_session_same_site |
Merchant authentication: Identity session cookie. |
session |
|
__Host-_merchant_essential |
Merchant authentication: merchant essential cookie. |
session |
|
_identity_session |
Merchant authentication: Main session cookie for Identity authentication. |
2y |
|
_master_udr |
Permanent device identifier. |
session |
|
_merchant_essential |
Contains essential information for the correct functionality of merchant surfaces such as the admin area. |
1y |
|
_secure_admin_session_id |
Used to store session id in core for authentication of legacy admin. |
12w |
|
_secure_admin_session_id_csrf |
Used to store session id in core for authentication of legacy admin. |
12w |
|
_shopify_essential_ |
Contains an opaque token that is used to identify a device for all essential purposes. |
1y |
|
_shopify_test |
Used to check cookie capabilities on the client. |
1min |
|
privacy_signal |
Remembers a user's privacy choices about cookies and online tracking, especially for marketing and advertising, based on user's regional privacy laws. |
1y |
Reporting and Analytics
|
Name |
Description |
Duration |
|
_landing_page |
Capture the landing page of visitor when they come from other sites. |
2w |
|
_merchant_analytics |
Contains analytics data for the merchant session. |
1y |
|
_orig_referrer |
Allows merchant to identify where people are visiting them from. |
2w |
|
_shopify_s |
Used to identify a given browser session/shop combination. Duration is 30 minute rolling expiry of last use. |
30min |
|
_shopify_y |
Shopify analytics. |
1y |
Additionally, we use pixels and tags from the following third parties, which may in turn place cookies.
Cookies Necessary for the Functioning of the Sites
|
Third Party |
Description |
Privacy Policy |
|
Cloudflare |
Shopify uses Cloudflare Network as a Service for edge routing. |
Reporting & Analytics
|
Third Party |
Description |
Privacy Policy |
|
Fullstory |
We use Fullstory to help measure how users interact with our websites. |
|
|
Google Analytics |
We use Google Analytics to help measure how users interact with our websites. |
|
|
Google Tag Manager |
We use Google Tag Manager to help manage analytics vendors. |
|
|
Vidyard |
We use Vidyard to provide video content and measure how users interact with our content. |
Advertising
|
Third Party |
Description |
Privacy Policy |
|
Bizible |
We use Bizible to help measure marketing and advertising campaign attribution. |
|
|
Facebook Pixel |
We use Facebook Pixel to help measure how users interact with our websites. |
|
|
Facebook Custom Audiences |
We use Facebook Custom Audiences to deliver targeted advertisements to individuals who visit our websites. |
|
|
|
We use Google Ads to deliver targeted advertisements to individuals who visit our websites. |
|
|
|
We use Instagram to deliver targeted advertisements to individuals who visit our websites. |
|
|
iSpot |
We use iSpot to help measure how users interact with our websites. |
|
|
LinkedIn Insight Tag |
We use LinkedIn Insight Tag to help measure how users interact with our websites. |
|
|
|
We use Reddit Ads to deliver targeted advertisements to individuals who visit our websites. |
|
|
TikTok |
We use TikTok to help measure how users interact with our websites. |
|
|
|
We use Twitter to help measure how users interact with our websites. |
|
|
YouTube |
We use YouTube to deliver targeted advertisements to individuals who visit our websites. |
Social Media & Content
|
Third Party |
Description |
Privacy Policy |
|
Facebook Connect |
We use Facebook Connect to allow visitors to our website to interact with and share content via Facebook’s social media platform. |
|
|
Gravatar |
We use Gravatar to allow visitors to our websites to create avatars. |
|
|
Instagram CDN |
Shopify uses Instagram CDN to provide content to user. |
|
|
Sanity CDN |
Shopify uses Sanity CDN to provide content to user. |
|
|
Simplecast |
Shopify uses Simplecast to distribute podcasts. |
|
|
Twitter CDN |
We use Twitter to allow visitors to our website to interact with and share content via Twitter’s social media platform. |
|
|
TypeKit (Adobe fonts) |
We use typekit to load web fonts from Adobe CDN |
|
|
Wistia |
We use Wistia to display video content. |
|
|
YouTube CDN |
Shopify uses YouTube CDN to provide content to user. |
In the table below, the purposes of personal data processing carried out within the scope of the activity for which the Privacy Notice is issued are detailed.
We will only use your personal data where we are permitted to do so by applicable law. Each personal data processing purpose is matched with the categories of personal data and the relevant legal reason relating to the purpose.
Your information generated and obtained through marketing and statistics cookies are processed for;
only if we obtain your consent through our Cookie Banner.
Your cookie consent choice is processed for:
because processing is necessary for compliance with a legal obligation.
Necessary cookies for webpage visibility, user-interfaces and network security are processed for:
because processing is necessary for the purposes of the legitimate interests pursued by Vivoo.
Yes, but we only transfer them for certain purposes with:
We operate internationally and transfer information to the United States and other countries for the purposes described in this policy. If you are located outside of the United States and you choose to use the Services or provide your information to us, your data may be transferred to, processed and maintained on servers, databases or cloud storage facilities located in the United States. Your use of the services represents your consent and agreement to these practices. If you do not want your data transferred to or processed or maintained in the United States, you should not use the services. We rely on multiple legal bases to lawfully transfer personal data around the world. These include your consent, the EU-US, and Swiss-US Privacy Shield, and the EU Commission approved model contractual clauses, which require certain privacy and security protections. Please note that the countries where we operate may have privacy and data protection laws that differ from, and are potentially less protective than, the laws of your country. You agree to this risk when you create a Vivoo account and click “I agree” to data transfers, irrespective of which country you live in.
Important Note: Google is certified under the Privacy Shield Framework and as a result, offers a guarantee that complies with General Data Protection Regulation.
We will retain your personal data for as long as is necessary to fulfil the purpose for which this data was collected and any other permitted linked purpose (for example your correspondence and any information we provide in return may be retained until the time limit for claims in respect of the communication or in order to comply with regulatory requirements regarding the retention of such data).
If your personal data is used for two purposes we will retain it until the purpose with the latest period expires; but we will stop using it for the purpose with a shorter period once that period expires.
You have different rights listed under General Data Protection Regulation and if you wish to confirm processing of your personal data or to have access to your personal data we may have about you, you may contact us through the contact methods listed below.
You may also request information about: the purpose of the processing; the categories of personal data concerned; who else outside the Vivoo might have received the data from the Vivoo; what the source of the information was (if you didn’t provide it directly to the Vivoo); and how long it will be stored. You have a right to correct (rectify) the record of your personal data maintained by Vivoo if it is inaccurate. You may request that Vivoo erase that data or cease processing it, subject to certain exceptions.
You may also request that Vivoo cease using your data for direct marketing purposes. When technically feasible, Vivoo will—at your request—provide your personal data to you or transmit it directly to another controller.
You also have a right to lodge a complaint with the competent data protection supervisory authority if you have concerns about how the Vivoo processes your personal data.
If you have questions about this statement or about data protection at Vivoo, you can contact us directly at letstalk@vivoo.io or you can contact our data protection officer directly:
Contact details for our data protection officer:
Vivosens, Inc.
44 Tehama Street, Suite 409, San Francisco, CA 94105
letstalk@vivoo.io
Customer Service:
If you are a California resident under the age of 18 and are a registered user of the Services, you may request that we remove content or information about you that you posted on the Services by (a) submitting a request in writing to letstalk@vivoo.io; and(b) clearly identifying the content or information you wish to have removed and provided sufficient information to allow us to locate the content or information to be removed. However, please note that we are not required to, and may not be able to, erase or otherwise eliminate content or information if: (i) other state or federal laws require us or a third party to maintain the content or information; (ii) the content or information was posted, stored, or republished by another user; (iii) the content or information is anonymized so that you cannot be individually identified; (iv) you do not follow the instructions posted in this Privacy Policy on how to request removal of your content or information; or (v) you have received compensation or other consideration for providing the content. Further, nothing in this provision shall be construed to limit the authority of a law enforcement agency to obtain the applicable content or information.
Under the CPRA (similar data protection laws in US states), California (and similar state residents with similar data protection law rights) residents have the right to opt-out of the sale of their personal information. Vivoo does not sell personal information in the traditional sense. However, we do allow certain third-party advertising partners to collect information for advertising purposes, which may be considered a “sale” under the CPRA.
To exercise your right to opt-out of the sale of your personal information, you (or your authorized representative) may submit a request by changing your preferences from Cookie Banner.
You can manage your cookie preferences by accessing our cookie banner at any time. Simply click on the "Cookie Preferences" link at the bottom of our website to update your choices.
You can also submit an opt-out request by contacting us directly at letstalk@vivoo.io. Please include "Opt-Out Request" in the subject line and provide details about your request. Upon receiving a request to opt-out, we will act upon the request as soon as feasibly possible, but no later than 15 days from the date of the request.
Please note that opting out of the sale of your personal information does not mean that you will stop seeing all advertisements, but it does mean that the advertisements you do see will not be personalized based on your online behavior, browsing history, or preferences.
We may change the content of our websites and how we use cookies without notice and consequently our Privacy notice may change from time to time in the future. We therefore encourage you to review them when you visit the website to stay informed of how we are using personal data.
This Privacy notice was last updated in April 2026..
